Your search resulted in 3 "Risk Mitigation Manager" jobs in Hudson Valley, NY. Save Job SearchSave SearchSave Job Search: Risk Mitigation Manager
![Veterans Wanted! Veterans Wanted!](https://rhw-static-assets.s3.amazonaws.com/images/vhw-flag-v2.png)
At TEG Federal Credit Union, we pride ourselves on being more than just a financial institution; we are a caring team dedicated to each other and our community. We are seeking a motivated and creative Assistant Vice President of Collections to join our growing team in Poughkeepsie, NY. Our vision at TEG is to empower our members to embrace their financial wellbeing each and every day. TEG’s mission is to enrich the lives of our members by providing quality financial services within the credit union philosophy of ‘people helping people,’ while maintaining a strong financial foundation.
To further that effort, we are looking for an Assistant Vice President of Collections to direct and coordinate all collection activities within the credit union, ensuring compliance with credit union collection policy; preserve the credit union's assets through supervision of the collection department; direct the development of collection policy; manage collection activity to meet credit union goals and objectives.
What We’re Looking For (Qualifications):
Bachelor’s degree in business, Finance, or similar preferred
3-5 years of experience directly working with collections and asset recovery.
In-depth understanding of and ability to interpret regulations affecting collection activities.
Knowledge of consumer and real estate lending practices and procedures
What you’ll get:
Salary range of $78,000 to $88,000
Generous annual bonus based on Credit Union performance.
Defined benefit plan (Pension)
401K with company match
Complete health & welfare benefits package including medical, dental, and vision insurance.
Paid Time Off, and much more!
What you’ll do as the Assistant Vice President of Collections:
Direct and monitors collection activities for the credit union through the Collections Department.
Direct the activities of the Collections and Risk Mitigation staff.
Recommend modifications to procedures and/or policies due to regulatory or statutory changes.
Develop, propose, gain acceptance for, and implement collections program policy and strategy; develop procedural changes as compliance requires or new programs demand. Lead activity related to new product development and process initiatives with respect to collection programs, compliance changes, and record retention.
Ensure that delinquent accounts are controlled, delinquent payments are collected, and/or collateral is recovered.
Oversee and monitor the Overdraft Privilege program. Represents Credit Union in foreclosure actions and related functions.
Prepare monthly reports for management and Board of Directors. Recommend accounts for charge-off. Perform and/or monitor all functions necessary to complete the charge-off process. Authorize the allocation of payments on charge-offs to recovery accounts.
Participate in establishment of annual department budget and monitor performance to budget throughout the year.
Serve as member of TEG Federal Credit Union's Security Committee, and Policy Review Committee. Serve as a member of the Asset/Liability Committee to develop operating procedures that assure the credit union maintains sufficient levels of capital, liquidity and pricing spreads.
Compensation:
The salary range is $78,000 to $88,000, with a generous annual bonus based on Credit Union performance. In addition, you will receive a comprehensive health & welfare package, Paid Time Off, a Defined Benefit Plan, and 401k match
APPLY NOW for immediate consideration!
TEG Federal Credit Union is an Equal Opportunity Employer. Applications are considered on the basis of skills, experience and qualifications without regard to race, age, creed, color, nationality, gender, sexual orientation, gender identity, marital status, military background, disability or any other legally protected status. All employment related decisions are made in accord with this policy.
- Full Time
- Immediately
- $78,000 - $88,000 Year
- Poughkeepsie, NY 12601
- 6/25/24
![Veterans Wanted! Veterans Wanted!](https://rhw-static-assets.s3.amazonaws.com/images/vhw-flag-v2.png)
Benefits:
- Competitive compensation
- Medical, Dental, and Vision insurance
- 401(k) Retirement Savings Plan with substantial company match
- Life and Travel Insurance
- Tuition Assistance
- Wellness Reimbursement Program
- Paid Holidays and Vacation
What is a Manager – Cybersecurity Vulnerability & Threat Management?
The Manager – Cybersecurity Vulnerability & Threat Management oversees and coordinates the activities of the cybersecurity operations team. Responsibilities include developing and implementing security practices for vulnerability management, application security, threat intelligence, threat hunting, managing incident response and investigations, conducting risk assessments, and staying updated on security trends. The Manager – Cybersecurity Vulnerability & Threat Management will be responsible for leading the organization’s efforts in identifying, analyzing, and mitigating security vulnerabilities across all IT & OT systems and networks. This role involves collaborating with various departments to ensure timely remediation of vulnerabilities, developing strategies to manage and reduce risk, and maintaining compliance with relevant regulations and standards. The ideal candidate will possess a strong technical background, excellent leadership skills, and a proactive approach to vulnerability management. The Manager – Cybersecurity Vulnerability & Threat Management will be instrumental in building various vulnerability and threat management programs.
What does a Manager - Cybersecurity Vulnerability & Threat Management do?
The Manager – Cybersecurity Vulnerability & Threat Management is responsible for the following:
- Develops, implement, and oversee the company’s Vulnerability & threat management programs to protect Central Hudson’s assets and critical infrastructure
- Overall responsibility for Vulnerability Assessment and Management
- Leads the design, implementation, and management of the organization’s vulnerability management program
- Conducts regular vulnerability assessments and scans to identify potential security weaknesses in IT & OT systems and networks
- Prioritizes vulnerabilities based on risk, impact, and exploitability
- Provides clear remediation guidance to IT teams
- Risk Analysis and Mitigation
- Analyzes vulnerability data to identify trends and develop strategies for mitigating risks
- Develops and maintain a vulnerability risk register and track remediation efforts to closure
- Assist in the investigation and response to security incidents, leveraging vulnerability data to understand attack vectors and prevent future occurrences
- Generates and delivers regular reports on vulnerability management activities and risk posture to senior management and relevant stakeholders
- Develops metrics and KPIs to measure the effectiveness of the vulnerability management program.
- Continually develops and manages roadmaps, strategy and maturity of the cybersecurity vulnerability management program by partnering with key stakeholders across The Company
- Develops and implements cybersecurity policies and procedures
- Leads and manages the day-to-day vulnerability governance
- Leads a team to defend against threats, reduce risk, and mitigate vulnerabilities across the Company
- Works closely with software development, DevOps, and IT teams to integrate security into the software development lifecycle (SDLC)
- Drives application security program, policies, and procedures
- Establishes and enforce secure coding standards and practices across development teams
- Integrates security tools and processes into the CI/CD pipeline to automate security checks
- Conducts regular security assessments, including static and dynamic application security testing (SAST/DAST), to identify vulnerabilities in software applications
- Performs threat modeling, code reviews, and penetration testing to uncover potential security weaknesses
- Provides detailed reports on findings and work with development teams to remediate identified vulnerabilities
- Identifies and implement automation opportunities
- Implements continuous improvement over people, process, and technologies
- Participates in incident response and investigation activities, ensuring timely resolution
- Conducts regular risk assessments and vulnerability management processes
- Leads teams in threat hunting measures
- Collaborates with IT and other departments to ensure a cohesive and effective security posture
- Stays updated on emerging cybersecurity threats and technologies
- Coordinates with external vendors and stakeholders on security matters
- Develops and deliver security awareness training programs for employees
- Monitors and reports on key security metrics to executive leadership
- Manages and guides third party vendor relationships related to the cybersecurity operations program
- Supports the escalation of risks, issues, actions, & decisions within the program
- Conducts risk assessments and develop strategies to mitigate potential threats and vulnerabilities
- Collaborates with cross-functional teams to integrate security measures into business processes and technology solutions
- Stays up-to-date with the latest cybersecurity trends, threats, and technologies to continuously improve the vulnerability management program
- Establishes and maintains relationships with key stakeholders, communicating security policies, incidents, and mitigation strategies.
- Ensures compliance with relevant regulations and standards
- Provides storm/emergency response support
What does it take to be a Manager– Cybersecurity Vulnerability & Threat Management?
Required:
- Bachelor’s degree in Computer Science, Information Technology or related field of study and 5 years of relevant experience. In lieu of a bachelor’s degree, an associate’s degree with 7 years of relative experience or a high school diploma or equivalency degree and 9 years of related experience will be considered.
- At least 3 years of vulnerability management experience
- At least 2 years in a security related role
- Proven leadership, facilitation, and organizational skills with at least 3 years of experience in a leadership role
- Experience with incident response
- Experience with creating and maintaining external and internal relationships with key stakeholders
- Understanding of cybersecurity frameworks, standards, and best practices
- Excellent knowledge of vulnerability management, and risk assessment
- Strong leadership skills, with the ability to manage and mentor a team
- Excellent communication skills, with the ability to collaborate effectively with diverse teams
- Familiarity with regulatory requirements and compliance frameworks
- Analytical mindset with the ability to assess complex situations and make informed decisions
- Ability to present at all levels of the organization
- A strong background with an understanding of the intersection between business and cybersecurity to improve security practices
- Ability to influence business decision-making by providing quantitative/qualitative data analytics, metrics, and analysis
- A results-oriented mindset with the ability to solve problems and make decisions
- Ability to work with limited direct supervision and professionally respond to constructive feedback
- Valid driver’s license
Preferred:
- Experience in Energy & Utilities or services industry
- Experience with threat hunting and threat modeling
- Experience with application security
- Knowledge of application security tools and technologies (e.g., SAST, DAST, RASP, WAF)
- Proficiency in programming and scripting languages (e.g., Java, C#, Python, JavaScript)
- Familiarity with DevSecOps practices and tools (e.g., Jenkins, Git, Docker, Kubernetes)
- Understanding of common security vulnerabilities (e.g., OWASP Top Ten) and how to mitigate them
- Experience with Microsoft PowerBI
- Experience with data visualization tools
- Relevant certifications such as CISSP, CISM, or comparable
This position has a career path which allows for advancement opportunities within a job series. The title and level are commensurate with experience. Pay range: $136,800-211,900
Please go to www.centralhudson.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position. Applications sent via e-mail and US Mail will not be accepted. No phone calls or agencies, please. All replies will be held in strict confidence.
All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance in employment individuals who are minorities, women, protected veterans, and individuals with disabilities.
VEVRAA FEDERAL CONTRACTOR
- Full Time
- Immediately
- 284 South Avenue, Poughkeepsie, NY 12601
- 6/25/24
![Veterans Wanted! Veterans Wanted!](https://rhw-static-assets.s3.amazonaws.com/images/vhw-flag-v2.png)
Benefits:
- Competitive compensation
- Medical, Dental, and Vision insurance
- 401(k) Retirement Savings Plan with substantial company match
- Life and Travel Insurance
- Tuition Assistance
- Wellness Reimbursement Program
- Paid Holidays and Vacation
What is a Vendor Risk Analyst?
The Vendor Risk Analyst is responsible for supporting Central Hudson’s efforts to assess, monitor and mitigate information and cybersecurity risks associated with our vendors and third-party relationships. The ideal candidate will have a strong understanding of vendor risk management principles, excellent analytical skills, and the ability to communicate effectively with internal stakeholders and vendors alike.
What does a Vendor Risk Analyst do?
- Conducts comprehensive risk assessments of new and existing vendors, evaluating factors such as financial stability, regulatory compliance, security protocols and data privacy practices
- Implements and supports processes for ongoing monitoring of vendor activities and performance, identifying potential risks and implementing mitigation strategies as needed
- Collaborates with cross-functional teams to develop and update vendor risk management policies, procedures, and standards in alignment with industry best practice and regulatory requirements
- Conducts due diligence reviews of potential vendors, assessing their capabilities, reputation, and adherence to contractual obligations
- Cultivates positive and collaborative relationships with vendors, serving as a point of contact for risk-related inquiries and facilitating regular communications
- Monitors vendor compliance with contractual and regulatory requirements, escalating issues as necessary and coordinating remediation efforts as needed
- Prepares and maintains accurate records of vendor risk assessments, findings, and remediation activities, generating regular reports for senior management and regulatory authorities as required
- Provides support for storm restoration efforts
What does it take to be a Vendor Risk Analyst?
Required:
- Bachelor’s degree in Cybersecurity, Information Assurance, Risk Management or related field of study. In lieu of a bachelor’s degree, an associate degree in the aforementioned fields and 3 years of relevant experience or a high school diploma or equivalency degree and 5 years of relevant experience will be considered
- Strong understanding of risk management principles, methodologies, and frameworks (e.g., ISO, NIST Cybersecurity Framework, NIST RMF, NATF Supply Chain Risk)
- Familiarity with Third Party Risk Management software & tools
- Excellent analytical skills with the ability to identify, assess, and prioritize risks effectively
- Effective communication skills, with the ability to collaborate with diverse teams, and communicate complex concepts clearly and concisely
- Detail oriented with strong organizational skills and ability to manage multiple tasks and deadlines effectively
- Ability to work with limited direct supervision and professionally respond to constructive feedback
- Valid driver’s license
Preferred:
- Experience in conducting risk assessments, developing risk mitigation strategies and evaluating contractual agreements
- Experience in Energy & Utilities or services industry
- Experience with Microsoft Power BI
- Experience with data visualization tools
- Relevant certifications such as CISSP, CISM, or comparable
This position has a career path which allows for advancement opportunities within a job series. The title and level are commensurate with experience. Pay range: $69,800 – $163,800
Please go to www.centralhudson.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position. Applications sent via e-mail and US Mail will not be accepted. No phone calls or agencies, please. All replies will be held in strict confidence.
All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance in employment individuals who are minorities, women, protected veterans, and individuals with disabilities.
VEVRAA FEDERAL CONTRACTOR
- Full Time
- Immediately
- 284 South Avenue, Poughkeepsie, NY 12601
- 6/14/24